REMARKS 

This Amendment is responsive to the Office Action dated August 23, 2006. 
Claims 24-46 were pending in the amended application. In the Office Action, claims 24- 
46 were rejected. In this Amendment, claims 24, 32 and 40 were amended. Claims 24- 
46 now remain for consideration. 

Applicant submits that claims 24-46 are in condition for allowance and requests 
withdrawal of the rejections in light of the following remarks. 

Claim Objections 

Claims 24-46 were objected to because of informalities. In accordance with the 
examiner's suggestions, these informalities were corrected. Applicant thanks the 
examiner for pointing out these informalities. 

§102 Rejections 

Claims 24-46 were rejected under 35 U.S.C. 102(e) as being unpatentable over 
Williams et al. (U.S. Pub. No. 2005/0015623). 

Claims 24-46 were amended to overcome these rejections. 

Applicant submits that base independent claims 24, 32 and 40 are patentable over 
Williams. 

Applicant's independent claim 24 was amended and now recites: 

"A method for effectively and efficiently identifying violations of 
privacy and security and guidelines in an information system while 
documenting and accommodating the live process of compliance 
and security testing , comprising the steps of: 

a. providing vulnerability data having universal definitions 
applicable to different computing systems; 

b. providing regulation data relating to a particular set of 
regulations; 
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c. providing priority data relating to a list of vulnerabilities 
prioritized in a specific order; 

d. providing keywords that are common to the vulnerability, 
regulation and priority data; 

e. searching for the keywords in the vulnerability, regulation 
and priority data; 

f creating relational data based upon the searching step, the 
relational data establishes a specific relationship between the 
vulnerability, regulation and priority data; 

g. determining a computer configuration for a target to be 
tested; 

h. customizing a screening process for the target using the 
computer configuration found in the determining step; 

i. testing for vulnerability violations in the target based upon 
the customized screening process; 

j. determining, according to the vulnerability violations, 
which regulation data applies to which vulnerability data and the 
priority of the vulnerability violations; and 

k. creating a prioritized report corresponding to the 
vulnerability violations and the regulations that apply to the 
vulnerability violations." 

Claims 32 and 40 contain similar limitations. 

Williams does not disclose, among other things, the method for identifying 
violations of privacy and security and guidelines in an information system while (1) 
documenting and (2) accommodating the live process of (3) compliance and (4) security 
testing. 

Since Williams does not disclose the method for identifying violations of privacy 
and security and guidelines in an information system while (1) documenting and (2) 
accommodating the live process of (3) compliance and (4) security testing, Applicant 
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believes that independent claims 24, 32 and 40 are patentable over Williams on at least 
this basis. 

Claims 25-3 1 depend on claim 24. Since claim 24 is believed to be patentable 
over Williams, claims 25-3 1 are believed to be patentable over Williams on the basis of 
their dependency on claim 24. 

Claims 33-39 depend on claim 32. Since claim 32 is believed to be patentable 
over Williams, claims 33-39 are believed to be patentable over Williams on the basis of 
their dependency on claim 32. 

Claims 41-46 depend on claim 40. Since claim 40 is believed to be patentable 
over Williams, claims 41-46 are believed to be patentable over Williams on the basis of 
their dependency on claim 40. 
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CONCLUSION 



Applicant respectfully submits that all of the claims (Claims 24-46) now pending 
in the application are in condition for allowance, which action is earnestly solicited. 

If any issues remain, or if the Examiner has any further suggestions, he/she is 
invited to call the undersigned at the telephone number provided below. 

Applicant respectfully requests a three-month extension of time and a Request for 
Continued Examination (enclosed herein). 

The Examiner is hereby authorized to charge $930 ($405 for RCE and $525 for 
three-month extension), as well as any insufficient fees or credit any overpayment 
associated with the above-identified application to Deposit Account No. 06-0515. 



Respectfully submitted, 




FELDMAN LAW GROUP, P.C. 
12 East 41st Street 
New York, New York 10017 
(212) 532-8585 
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